This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json) Hash identifier: gza+3/dzjnUO2AkExiJhlR72OOmNoJUbDOy1g0f9bCA= Subject key identifier: 11:FC:09:2B:0D:3B:40:A9:25:13:C7:DA:92:BD:CA:F7:51:F3:E8:5B Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece Certificate serial: 019AF5778B46BF0BE00560EA15E0359841EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 21:00:43 +0000 Manifest this update: Sat 06 Dec 2025 21:00:43 +0000 Manifest next update: Sun 07 Dec 2025 21:00:43 +0000 Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: PFvLK/WKMbb84H/8Vxr0Vuzqa1LFO/e75EFLFURJa7M=) 2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:77:8b:46:bf:0b:e0:05:60:ea:15:e0:35:98:41:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece Validity Not Before: Dec 6 21:00:43 2025 GMT Not After : Dec 7 21:00:43 2025 GMT Subject: CN=11fc092b0d3b40a92513c7da92bdcaf751f3e85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e9:12:be:ce:30:62:90:75:48:86:b6:1b:63: 2d:3a:b8:33:f6:07:d6:ba:0f:03:87:2b:a2:07:45: 46:4e:67:6c:db:0e:2a:21:9a:83:0f:75:18:29:6f: f0:b8:dd:20:9a:87:a5:b9:35:37:fa:89:cb:dc:23: a1:48:0d:3d:4c:b4:9b:b9:c4:0c:43:52:9b:e0:7d: c2:f6:0e:2c:5f:36:7b:1a:76:6d:57:ed:5f:55:4d: 3b:37:e2:e7:04:e1:04:09:7b:e5:c8:3a:49:85:6d: bd:bd:5e:94:b8:8e:03:08:97:c1:73:6c:48:0d:0d: 5c:1f:3f:42:7e:73:e6:01:1a:43:3a:5b:c0:dd:89: f2:f8:a4:67:ae:90:6c:45:47:3c:ec:c9:c8:64:59: 62:c2:53:5e:4a:c1:88:7f:2a:55:f9:70:fc:14:49: 29:5a:9c:59:01:0d:f9:35:36:3e:52:4b:19:b6:d8: de:18:8a:cd:92:20:63:fe:ae:3d:dd:e1:ce:6b:8f: 41:31:7a:05:d5:44:01:27:0b:43:4f:5a:fb:83:a4: d4:f6:cf:d3:47:21:55:f1:02:77:c8:79:c7:cd:eb: d9:42:1a:f5:95:44:05:77:52:53:0f:17:96:56:64: c9:63:5a:16:fd:96:17:67:bb:e6:23:c4:2a:15:c7: 56:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FC:09:2B:0D:3B:40:A9:25:13:C7:DA:92:BD:CA:F7:51:F3:E8:5B X509v3 Authority Key Identifier: keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:92:fe:a8:57:f0:6c:f3:2f:60:28:09:a7:cb:b2:66:1d:a2: 85:13:64:b0:51:ca:60:91:56:09:48:28:d6:02:40:13:85:b5: 43:b1:07:4b:79:2f:fe:0e:9f:3f:11:81:62:dc:ab:6e:e7:60: f4:78:3e:ac:90:3d:95:98:36:ae:8e:25:64:bf:e7:8f:70:11: 4a:3e:ff:65:6b:00:d2:9c:ee:ef:77:5d:06:a0:e6:db:2f:2f: 4e:0a:57:b0:4d:5e:9e:2c:6a:74:e5:f0:49:3e:e6:1e:e1:bc: 4a:64:3f:30:00:a3:27:17:01:49:6c:c2:ab:57:68:bf:7a:2e: 00:7d:6f:13:2f:89:9e:d3:5d:bb:3d:78:2a:d9:0c:ce:d3:5f: 19:78:f1:07:ea:80:5f:5c:45:d1:39:2c:38:fc:44:d1:3a:2e: 89:e6:de:7b:88:6c:26:fd:7e:3a:30:1f:12:7a:97:50:ba:cc: 90:09:20:bc:0c:48:4a:77:66:86:08:96:68:0d:cc:07:42:3a: 82:20:8c:55:7b:ea:8f:c7:99:60:7d:55:a1:f2:ae:4e:23:c4: 1a:0c:95:e9:fc:5d:00:6d:66:61:d1:4e:7f:0a:2b:4a:3d:f0: 50:ff:4e:41:b9:89:59:c0:ef:41:c4:ef:8a:60:c5:77:75:54: b3:83:53:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1d4tGvwvgBWDqFeA1mEHsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOTgxNGQ0MzE1ZDMwYWRiYzhkZTMwNjAwNTU2YWU5YzNj ZjllY2UwHhcNMjUxMjA2MjEwMDQzWhcNMjUxMjA3MjEwMDQzWjAzMTEwLwYDVQQD EygxMWZjMDkyYjBkM2I0MGE5MjUxM2M3ZGE5MmJkY2FmNzUxZjNlODViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOkSvs4wYpB1SIa2G2MtOrgz9gfW ug8DhyuiB0VGTmds2w4qIZqDD3UYKW/wuN0gmoeluTU3+onL3COhSA09TLSbucQM Q1Kb4H3C9g4sXzZ7GnZtV+1fVU07N+LnBOEECXvlyDpJhW29vV6UuI4DCJfBc2xI DQ1cHz9CfnPmARpDOlvA3Yny+KRnrpBsRUc87MnIZFliwlNeSsGIfypV+XD8FEkp WpxZAQ35NTY+UksZttjeGIrNkiBj/q493eHOa49BMXoF1UQBJwtDT1r7g6TU9s/T RyFV8QJ3yHnHzevZQhr1lUQFd1JTDxeWVmTJY1oW/ZYXZ7vmI8QqFcdWQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBH8CSsNO0CpJRPH2pK9yvdR8+hbMB8GA1UdIwQY MBaAFF6YFNQxXTCtvI3jBgBVaunDz57OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDct MzViNTNkMjM3NmQyLzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDctMzViNTNkMjM3NmQy LzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc5L+qFfw bPMvYCgJp8uyZh2ihRNksFHKYJFWCUgo1gJAE4W1Q7EHS3kv/g6fPxGBYtyrbudg 9Hg+rJA9lZg2ro4lZL/nj3ARSj7/ZWsA0pzu73ddBqDm2y8vTgpXsE1enixqdOXw ST7mHuG8SmQ/MACjJxcBSWzCq1dov3ouAH1vEy+JntNduz14KtkMztNfGXjxB+qA X1xF0TksOPxE0Touiebee4hsJv1+OjAfEnqXULrMkAkgvAxISndmhgiWaA3MB0I6 giCMVXvqj8eZYH1VofKuTiPEGgyV6fxdAG1mYdFOfworSj3wUP9OQbmJWcDvQcTv imDFd3VUs4NTUQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:56:23 2025 by rpki-client